Skip to main content

Hacker steals at least 58 million personal records from data management firm

1129714 autosave v1 hackers22
Shutterstock
Hardly a day goes by lately when we don’t hear about a massive data breach. Whether it’s a major retail outlet like Home Depot, an electronic auction service like eBay, or an online services company like Yahoo, no matter where your personal data resides it seems wide open to malicious attack. Research shows that there have been 2,928 publicly disclosed attacks so far in 2016 involving greater than 2.2 billion records in total.

Sometimes, you know that you’re a victim of a data breach, such as when Blue Cross Blue Shield company Carefirst was hacked and over a million records were stolen. Sometimes, however, as with the recent data breach at Modern Business Solutions (MBS), you may not even be aware that the company exists, according to security firm Risk Based Security.

Related: Target data breach forces CEO out the door

MBS is a company specializing in providing in-house data management and monetization services to other companies. If you’re an MBS customer, then you probably don’t even know it, and the 58 million stolen database records could belong to just about anyone.

The hacker who perpetrated the theft is known by the Twitter handle @0x2Taylor, and apparently the stolen data was posted multiple times over the past weekend. The data was quickly removed each time, but it included complete names, IP addresses, dates of birth, email addresses, vehicle data, and occupations. In other words, the data would be incredibly helpful for conducting further, highly individualized attacks such as identity theft.

Perhaps worst, the breach was made possible due to the use of an obvious attack vector. MBS was using an open MongoDB database, and apparently all that was needed for the attack to occur was for the IP address of that database to be communicated online. Rather than informing MBS of the security issue, whoever found the database leaked it to acquaintances instead. From there, the attack was both simple and straightforward.

At this point, there’s some confusion as to the actual number of records that were released. While it’s at least 58 million, it could be as many as 258 million based on an analysis of the database involved. While research is ongoing, it’s entirely possible that we’ll never know exactly how much data was released and who was affected.

Normally we would give various recommendations about being aware of where your personal data is being stored and to respond appropriately to any notifications of a data breach. In this case, there’s not much you can do except invest in a credit and data monitoring service of some sort to make sure you’re generally protected — because you never know when you might be attacked and not even know it.

Mark Coppock
Mark has been a geek since MS-DOS gave way to Windows and the PalmPilot was a thing. He’s translated his love for…
Macy’s confirms hackers stole customer data from its website
macys confirms hackers stole customer data from its website macy s store in midtown manhattan

Macy’s says it’s been hit by a “highly sophisticated and targeted data security incident” that affected “a small number” of its customers.

The data breach, which stole information from customers as they shopped on Macy’s online shopping site, took place between October 7 and 15, 2019. Those affected have been notified and will be updated on developments, Macy’s told Digital Trends by email.

Read more
This 240Hz gaming monitor from LG is on sale for just $200 at Amazon
The LG UltraGear 27-inch OLED gaming monitor displaying a space game.

When it comes to gaming monitors, LG’s UltraGear lineup reigns supreme as one of the best lineups on the market. These screens are engineered to squeeze every last amount of picture detail from the games you’re playing, resulting in some of the brightest and richest colors, best contrast levels, and exceptional motion clarity. While looking through Amazon deals, we came across a terrific promo on an UltraGear that we just had to write about.

Right now, you’ll be able to purchase the LG 27-inch UltraGear IPS Gaming Monitor for $200. At full price, this model normally sells for $300. If you’ve been looking for one of the best monitor deals of the week, you’ve come to the right place!

Read more
The Alienware Aurora R16, our favorite gaming PC, is $900 off
Alienware Aurora R16 sitting on desk

If you’re looking for the end-all-be-all of gaming PC deals, look no further than this extraordinary offer we found on one of the best desktop towers in the business, the Alienware Aurora R16. For a limited time only, you’ll be able to order this premium PC through Dell for $3,100. Usually, this exact configuration of the Aurora R16 costs $4,000, so you’ll be saving yourself about $900!

Why you should buy the Alienware Aurora R16
Building your own PC is one of the most satisfying experiences for a diehard gamer, but it can also be a pretty tedious process. That’s why high-quality pre-builds exist, and the Aurora R16 is one of the best options. In our best gaming desktop PCs roundup, we gave the R16 top honors for several reasons, with power and performance being two of its leading accolades.

Read more